International Information Systems Security Certification Consortium (ISC)2 Announces Associate Program

Initiative Designed for Candidates Who Pass CISSP or SSCP Exams Yet Require Professional Experience for Certification

VIENNA, Va., June 18, 2003 – The International Information Systems Security Certification Consortium (ISC)2, a non-profit organization dedicated to qualifying and certifying information security professionals worldwide, today announced an Associate of (ISC)2 program for those who pass the Certified Information Systems Security Professional (CISSP) or Systems Security Certified Practitioner (SSCP) exams without the experience required for certification.

Upon passing either exam, the Associate of (ISC)2 will possess an independent and objective measure of competence and be introduced to the rigors and ethics of the profession through their association with the consortium. The exams test a candidate’s understanding of the CBK, (ISC)2’s living compendium of information security “best practices.”

“The Associate program is designed to accelerate the professional growth of practitioners worldwide by encouraging individuals entering the field to be formally trained, pass a rigorous exam, and subscribe to (ISC)2’s Code of Ethics as early as possible in their careers,” said James E. Duffy, CISSP, executive director of (ISC)2, based in Vienna, Va.

After passing the selected exam and signing (ISC)2’s Code of Ethics, the Associate must garner the requisite work experience and successfully complete a professional endorsement process before he/she becomes officially certified as CISSP or SSCP.

The CISSP, designed for professionals devising information security strategy, requires four years of professional experience in the field of information security, while the SSCP, designed for professionals following a tactical information security career path, requires one year of experience. Associates of (ISC)2 will not be able to use the designation of CISSP or SSCP until formally certified.

“Associates of (ISC)Â? who pass these challenging exams will be able to assimilate the discipline and structure that can expedite progress throughout their careers,” said Duffy. “The program is ideal for those accumulating their first experience in the field and for students looking toward a future career in our profession.”

“In addition, Associates will also be able to access a suite of (ISC)2 career support programs, such as specialized forums, communications, peer networking and other educational opportunities,” Duffy said. “The Associate program is part of (ISC)2’s commitment to serving the needs of the information security professional throughout the career path of their choice.”

CISSP and SSCP exams are available worldwide. A schedule of these exams and the Associate application can be accessed on the (ISC)2 Web site at www.isc2.org . FAQs on the Associate of (ISC)2 can also be found on the site.

About (ISC)2:
Based in Vienna, Va. with offices in London and Hong Kong, the International Information Systems Security Certification Consortium, Inc. (ISC)2 is the premier organization dedicated to providing information security professionals and practitioners worldwide with the standard for professional certification that is based on (ISC)2’s CBK, a compendium of industry “best practices” for information security professionals. Since its inception in 1989, the non-profit organization has provided training and certification and has advocated the need for one industry-wide security standard. (ISC)2 provides three forms of certification: the Certified Information Systems Security Professional (CISSP) and the Systems Security Certified Practitioner (SSCP), both unique by requiring years of experience in their field and, for the CISSP, an endorsement by a professional that is familiar with the background of the candidate; and, in partnership with the National Security Agency (NSA), the Information Systems Security Engineering Professional (ISSEP) credential for information security professionals who want to work for NSA as an employee or outside contractor. ISSEP professionals must first hold the CISSP certification. For more than a decade, (ISC)2 has certified thousands of security professionals in more than 90 countries. More information about (ISC)2 is available at www.isc2.org .